AlgoSec Reviews

• The flagship feature used is its correlation of filtering rules (ACL/firewall).
• The audit of changes made in our environment is also very useful in the investigation of failure.

In an environment where onion layer security is strongly implemented, the filter elements can be configured in various places, and the traffic simulator proves, in this case, to be life-saving, whether in diagnostic time or in efficiency.

The AlgoSec solution has allowed us to achieve a clean-up and optimization of our filtering rules across our entire environment. The rules analysis allowed us to delegate the tool for operational purposes for the evaluation of firewall opening and audit requirements.

• The filter rules correlator allows us not only to have a clear view of the blocking points but also the quality of the filtering performed on the various firewalls highlighted by their risk index.
• Another interesting feature of the product is its ability to highlight filtering rules that would mask other more specific rules and thus lead to an optimization of the system.
• AlgoSec also allows us to have a history of changes. This feature is especially useful in the event of an outage or an unwanted change.

Although I'm very satisfied with the product, one of the ways of improving the product could lie, perhaps, in the acceleration of the analysis process and especially in the section — traffic simulation query.

Another improvement would be the support of an orchestration of different firewalls in a heterogeneous environment, mainly at the level of the management of the objects so as to have a homogeneous nomenclature.

My organisation has used Firewall Analyser for many years to simplify and automate rule set management across an estate of hundreds of Checkpoint firewalls. Key functionality provided covers compliance reporting and identification of duplicate and unused, as well as risky rules.

Algosec is a game changer for our environment due to core functionality provided by Firewall Analyser. It has simplified rule optimisation and compliance. We are now building on this by deploying AlgoSec FireFlow which we expect to massively reduced the time and complexity around firewall change requests and approval. 

Compliance and risk reporting are the most valuable features of the product, closely followed by FireFlow, which builds on the analysis engine. I have also found the team to be engaging and customer focused.

I look forward to cloud service integration, which is coming in future releases and this should help make the product more of a complete solution. I would also like to see AlgoBot integrate with other communication systems such as Rocket Chat.

One of the standout features is its ability to provide visibility and control over security policies. The product offers a centralized dashboard that gives an overview view of the entire network infrastructure, including firewalls, routers, and switches, regardless of their vendor or location. This unified view enables administrators to easily manage and modify security policies from a single platform, eliminating the need for manual, error-prone processes. 

AlgoSec also provides a powerful rule analyzer that detects and highlights any redundant, overlapping, or conflicting rules, helping organizations optimize their security policies for maximum efficiency. AlgoSec also allows administrators to define and enforce a standardized change management process, reducing the risk of unauthorized or misconfigured changes.

AlgoSec's compliance management capabilities have helped a lot in my organization. It offers predefined compliance frameworks, such as PCI DSS and HIPAA, and assists organizations in mapping their security policies to these standards. AlgoSec can generate comprehensive reports that demonstrate compliance with regulatory requirements, simplifying the audit process. 

It also provides continuous compliance monitoring, alerting administrators of any of policy violations or any changes that may impact compliance.

The visibility of security policies and automation is the most valuable feature of AlgoSec. It offers a range of automated workflows and processes that accelerate security policy management. For example, it can automate the process of rule recertification, ensuring that rules are regularly reviewed and validated. 

AlgoSec also facilitates policy optimization by automatically suggesting rule modifications based on industry best practices or specific compliance requirements. By automating these repetitive tasks, AlgoSec frees up valuable time for security teams to focus on more strategic initiatives.

AlgoSec offers almost everything that clients want and has a robust set of features. That said, there are a few areas where it could improve. The user interface, although functional, could benefit from a more modern and intuitive design. Additionally, the initial setup and configuration process may require some technical expertise, which could pose a challenge for organizations with limited security resources. A simple tutorial about the initial configuration on Youtube could provide a lot of help. Even a self-guide link inside the GUI would be helpful.

I've used the solution for two years.

The initial setup was complex.

The implementation was handled in-house.

I started working with AlgoSec to integrate change opening tools with some clients as I work at an AlgoSec reseller.

I have customized hooks so that custom actions could be triggered within AlgoSec, before implementing the active change I worked to generate scripts to clean up the checkpoint firewall rule base based on AlgoSec reports. My experiences with AlgoSec have always been with end-user support, especially when it comes to software development. That said, I've also done an installation and helped the customer create the approval flow.

AlgoSec has been a partner in my company for many years, with which we can improve our customers' experience.

It adds many facilities in the management of network equipment, due to the ease in analyzing the rule base. It helps firewalls to have a better performance since the rules are positioned more efficiently and unnecessary rules and objects are removed.

The training provided by AlgoSec helps a lot in the development of employees who work with the tool.

I recently discovered the "ask the community" option and it made problem-solving a lot easier.

All of AlgoSec's features are very good, however, in my point of view traffic planning and risk analysis are the most important, with them we can have a view of which items will be affected by the change, which objects need to be created or used, which rules will be affected, with that we can have a much more optimized base and easier to maintain.

With the risk analysis, we can customize it according to the company because each client may have a different risk scenario.

The possibility of customization also makes the job much easier.

Plugins for integration with other tools as ServiceNow, for example, would be ideal. This would facilitate the work without needing a developer to carry out integrations, mainly for market tools.

We need a screen to view system logs. This would facilitate the problem analysis process. The possibility of placing buttons in another system to trigger actions within AlgoSec would be great. For example, placing an HTML button in ServiceNow that triggers the active change. Being able to view the ticket flow within other tools would be useful.

I've used the solution for three years.

I've always worked with the standalone version.

I've always used Algosec.

I have not looked into ROI.

The costs are paid according to use.

I did not evaluate other options previously.

We have a large setup of multi-vendor firewalls with large in numbers of policies and rules. Handling rules and policy visibility manually are very difficult for clients multi platform firewalls. AlgoSec AFA has eased day-to-day operation, firewalls rules optimization, clean-up for unused policies and reporting, and visibility on policy and rules. All of this improves the firewall performance.

AlgoSec FireFlow workflow change tracking in environment makes it easy to have a central repository also multiple stakeholder approved change management.   

The AFA workflow has helped us to manage firewall rules implementation using multiple stakeholders' approval with an end-to-end lifecycle of change management and tracking. 

Reporting helps us with deliverables, areas of focus for improvement, and much more. Algosec AFA is useful for policy optimization and clean-up and can measure capacity management. 

AFA provides greatly extended support for firewall rule review for risky rules, optimization, and clean-up for unused rules. 

Firewall rule automation for implementation also makes support easy for support firewall administrators.

AlgoSec currently has two useful features: AFA and AFF. 

The AFA workflow helped us to manage firewall rules implementation using multiple stakeholders' approval with an end-to-end lifecycle of change management and tracking. 

Algosec AFA is useful for policy optimization, cleanup, and measuring capacity management. 

AFA provides greatly extended support for firewall rule review for risky rules, optimization, and clean-up for unused rules. Firewall rule automation for implementation also makes support easy for support firewall administrators.

There could be certain improvements such as supporting secure email. We have some cases where the client SMTP /POP email system is discarded, which is very important factor change notifications.

Fireflow workflow rule/change implementation for time-based rules is not currently supported. 

These improvements in upcoming code will definitely help with end-to-end firewall rule implementation. 

NAT rule implementations were in the roadmap. We are expecting this soon. 

Certain optimization of AFA/AFF SMS resources would ease daily operations.

I've used the solution for four years.

While stability is good, further improvement is needed.

The scalability is good.

Technical support is good.

Positive

We did not use a different solution previously.

Some changes in setup are ongoing as we are growing.

I am a vendor partner of AlgoSec.

The licensing is commendable.

We evaluated a few other options before positioning this solution. 

The solution could use improved support.

One of our customers was using basic firewalls and the VPN, however, much of the policies were not applied - hence there were a lot of loopholes and hence a lot of spam and malicious activities were going on in their organization. Employees were able to use blocked sites, IT managers were not able to address the issue on their own. 

The client replaced existing solutions with AlgoSec. AlgoSec has given better visibility and better performance. IT managers who [reviously could not find loopholes were able to address them. 

Detection of loopholes and pinpointing troubleshooting areas were the key value additions that AlgoSec has provided. Its response time is fast. 

Detection of malicious activities and malware is much better than other options. 

Previously, the company was dependent on third-party solutions for audit reports. AlgoSec now provides an instant audit report. 

It has improved the management of all the firewalls (which are both cloud and on-prem) via a single console. The integration with the routers and other IT products is seamless.

The most valuable aspect of the product is the automatic application connectivity. The second best feature would be detection and response and analysis of the data. Applying security policies over the network is easy. AlgoSec instantly provides audit reports which is a most useful feature in this organization. 

Integration of the next-gen firewall, cloud firewall, routers, and load balancers is seamless and a very useful feature.

The solution offers unified and risks analytics reports features. 

AlgoSec helps IT managers automate firewall management across all hybrid environments.

The blacklisting and whitelisting of IP addresses should be improved. There are many false positives.

The cloud migration process should be more streamlined for my customer-facing issues.

The price should be less. The customers who have just started using the AlgoSec firewall management tool, as of now, have not faced any major issues apart from some small debugging. 

Improvement can be done in many areas. For example, it would be great if AlgoSec could integrate with an endpoint solution and directly integrate with firewall and endpoint solutions to bring much more visibility.  

Our main use cases for this solution are:

• Firewall Rule optimization
• Topology mapping of various firewalls
• Automating the implementation of rules.
• Reports warning before time based rules expire. 

We also implemented the AlgoBot, which is extremely useful when checking if rules already exist or finding out easily where they need to be configured.

We have 20-plus firewalls from multi-vendors in several sites, both IT and OT. Therefore, an automated way to manage firewalls is a must, especially since staff is always on the short side.

AlgoSec has saved us a lot of time in managing our rule base which has become increasingly large. With 20-plus multi-vendor firewalls, it gets really hard to manage without a solution like AlgoSec. This has helped us to fulfill our internal SLAs for change implementation.  

The fine tuning of the policies is a lot faster and repeatable. 

The compliance factor has also helped us a lot where we can show auditing that we have a repository for all the changes made in the firewalls, who made them, and at what time.

Gone are the days where time-based rules expire without anyone noticing. We have now automated reports sent to the team. This allows us to ask the involved asset owners if rules can be disabled or need to be extended.

Most valuable features are the firewall rule optimization, topology mapping, and automating the deployment of new rules in several multi-vendor devices. 

AlgoBot is a brilliantly, simple idea that lets us give our IT internal customers a way to check if rules are already in place before asking for more.

With firewall rule optimization, you cannot only tune most used rules higher in the rule base, but also check for unused objects or rules to clean up.

The automatic implementation of rules in several firewalls simultaneously is also a great feature, especially in large environments or on short staffed teams. 

AlgoBot should be more developed by adding more features to the chat.

We will be integrating with Cisco ACI soon. Hopefully, new features with this integration will be developed as well in terms of automation.

I came across a difficulty recently with a BGP enabled firewall that had a large number of routes. This wasn't directly supported due to a 3000 rule per firewall limit.

We've been using AlgoSec for over six years.

It has been running flawlessly since installation. Even upgrades are pretty straightforward and have never given us problems.

We have added 10 more firewalls to our 14 existing and have had no performance or scalability issues.

We have had several tickets opened and the responses were fast. This enabled us to solve our problems quickly. The only complaint is about the license rekeying needed for when you need to change a firewall. That usually takes a bit of time.

We did use a different solution for several years. The features and usability made us switch.

If you are knowledgeable about the firewalls that you intend to manage, the initial setup is really easy. The most difficult steps are configuring checkpoints for LEA integration where you need to create the object in each firewall, establish connectivity, install the database, install the policy, etc.

It was initially implemented through a vendor. Their level of expertise was good enough to implement the solution effortlessly.

Cost is based on firewall. There are bundles, e.g., virtual firewalls might make the solution cheaper.

The licensing scheme should be done in a simpler way. For example, if we delete a firewall and want to add a new one, then the license doesn't get freed up automatically. You have to request a new license to customer support and install it. If you are testing new implementations, this can be cumbersome.

We evaluated the main competitor, Tufin, because we were using it!

Our first use case is the homogenization of important rules for a large number of firewall-enabled devices in our corporate network.

With one click, we have at our disposal everything we consider important and in this way we do not have to enter each device to verify the information.The AlgoSec Security Management Suite collects all of this information.

The most important thing is to have all of the information in one application. At a glance, we can see security problems and possible issues in the future. In this way, we can be proactive and solve problems before they happen.

With AlgoSec Security Management we have many advantages.

We have all of the information about the firewall devices that we have at risk, either because there is a firewall policy with some open protocol that can give us security problems later, or because long-unused rules present a security hole.

We have collected all of the alerts for each of the firewalls, which helps to identify devices that are in need of a more in-depth analysis.

The most valuable feature is the ability to compare policies with certain established and accepted configurations and values.

We have the option to generate several security reports for our firewall devices, such as what policies were created, what cluster they were created in, and which pose a risk either because they have been obsolete for a long time or because they have very specific technical specifications. Examples of this are open ports that are totally vulnerable or declared services that violate security.

All of the reports can be exported to PDF, meaning that we can send them to the different departments to study the cases and determine whether these rules are necessary. If not, then they can be eliminated to optimize the system.

It would be very helpful to have a direct link to the relevant firewall policy embedded within reports when there are warnings or risks indicated. Regardless of how serious the risk is, we could jump to the policy with a single click. In this way, the administration would be much easier and we would not have to be changing the screen every time we want to look at or modify something in our firewall. I understand that they are third-party software packages that can achieve this, but it would be more comfortable to have it integrated.

We have been using AlgoSec for two or three years.

The stability of this solution is very good.

Scalability is very good.

We have had no problem with technical support. Different incidents have been resolved without major complications.

The first solution that we used in this category was AlgoSec.

The initial setup is not complex.

Our in-house team performed the deployment with help from the vendor team. The expertise was good.

The price is within the standard of security products.

We did not evaluate other options before choosing this solution.